Nebula retains important detection and suspicious activity data, but only for a limited time. If you find that you need to retain this data for a longer period, you have the option to utilize the Google Chronicle SIEM integration to export Nebula's detection logs. This integration empowers you to import critical detection and suspicious activity data through Google Security Operations feeds, utilizing the comprehensive Unified Data Model fields for a more streamlined and insightful approach to security operations.
Before you begin, check out the Requirements for Nebula integration with Google Chronicle SIEM.
Return to the Nebula integration with Google Chronicle SIEM section.